hbdxmz / AutoBypassEncryptAndSign
auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试
☆49Updated last year
Alternatives and similar repositories for AutoBypassEncryptAndSign:
Users that are interested in AutoBypassEncryptAndSign are comparing it to the libraries listed below
- 一款BurpSuite插件,辅助手工测试☆72Updated last year
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆38Updated 2 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆30Updated last year
- nuclei模版生成插件☆106Updated last year
- ☆35Updated 3 years ago
- 一款支持检测host头攻击的burp suite插件☆51Updated last year
- 一个简单的批量反编译jar包的小脚本☆35Updated 3 years ago
- ☆23Updated 2 years ago
- 经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary☆36Updated 9 months ago
- ☆90Updated last year
- god_param☆40Updated last year
- Java命令行文件监控小工具(代码审计)☆101Updated 3 years ago
- burpsuite插件-被动无感识别指纹-主动poc扫描☆26Updated 7 months ago
- 直接导入需要碰撞的IP和域名,工具多线程碰撞速度快,访问状态码200成功时则会高亮。☆53Updated last year
- 手动收集各大SRC平台主域名,通过程序自动处理以格式化存入数据库中,便于配合其它信息搜集工具进一步测试。☆45Updated 4 months ago
- 若依后台定时任务一键利用☆52Updated 3 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆80Updated last year
- burp手工检测fastjson辅助☆86Updated last year
- 云函数扫描器☆58Updated last year
- 一款基于fofa根据域名或fofa语法收集C段分布数量的工具☆38Updated last year
- burpsuite knife插件维护分支(2024分支请访问 knife-branch)☆7Updated 10 months ago
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 3 years ago
- 针对部署在Weblogic上的Shiro☆44Updated last year
- 右键检测图片是否存在Exif漏洞☆31Updated 2 years ago
- API字典,API爆破字典☆23Updated 2 years ago
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆91Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- 2023泛微0A漏洞poc检测工具☆38Updated last year
- Burp-plugin☆16Updated 9 months ago
- 一款基于JAVA编写的插件化漏洞利用工具☆39Updated last year